Re: [qubes-users] Save session in appvm

2017-03-16 Thread sm8ax1
Hack: > Hi, > > How can I save session inside appvms (here, Fedora template), for future > restore, since /org/gnome/gnome-session does not exist/work. > > Thanks. > I was wondering about something similar too, but from the "xl save" and "xl restore" angle. e.g. by inroducing "save" and

Re: [qubes-users] Kicking the sudoers dead horse

2017-03-15 Thread sm8ax1
Chris Laprise: > On 03/14/2017 11:30 PM, sm8ax1 wrote: > >> Second, you mention that ~/.bin/sudo could be overwritten with the >> attacker's binary or a script. I'm not sure I understand what you mean >> exactly... the real sudo works by virtue of being owned by root w

Re: [qubes-users] Kicking the sudoers dead horse

2017-03-14 Thread sm8ax1
Chris Laprise: > On 03/14/2017 09:13 AM, sm8ax1 wrote: > > >> I still haven't heard any rebuttals against how sudo can help mitigate >> attacks against the virtualization (persistence aside). Without sudo, >> unprivileged processes can access /proc/xen/privcmd, raw

Re: [qubes-users] SystemD sucks - qubes shouldn't use it

2017-03-09 Thread sm8ax1
Chris Laprise: > On 03/08/2017 08:50 AM, taii...@gmx.com wrote: > >> "The Linux kernel, I believe, is clean. > > You lost me right there. I don't believe in hero worship, and if anyone > thinks Linus is fallible it is the people on this list. Thanks for addressing this, Chris. Privilege

Re: [qubes-users] Re: Videostream with Qubes??

2017-03-09 Thread sm8ax1
Grzesiek Chodzicki: > W dniu czwartek, 9 marca 2017 23:28:24 UTC+1 użytkownik evo napisał: >> Am 03/09/2017 um 11:26 PM schrieb Grzesiek Chodzicki: >>> W dniu czwartek, 9 marca 2017 23:19:23 UTC+1 użytkownik evo napisał: Am 03/09/2017 um 11:12 PM schrieb Grzesiek Chodzicki: > W dniu

[qubes-users] First time user: initial issues and thoughts

2017-03-04 Thread sm8ax1
Hi, I just installed Qubes yesterday and wanted to share my thoughts and some issues I ran into. Table of Contents 1. Use Case / Thanks 2. Minor issues with manual partitioning and assigning mountpoints 3. First-boot dialog 4. NetworkManager applet didn't start the first time 5. Modifying /etc

Re: [qubes-users] New User...Install won't setup and Run from SSD

2017-03-08 Thread sm8ax1
William Fisher: > Hi, > > My name is William Fisher, and I built a desktop specifically for Qubes Os. > I have one Samsung M.2 NVMe SSD and one 1TB disk drive. After I install > Qubes to the SSD and reboot, it does not recognize the SSD as a bootable > device. Using the same install procedures on

Re: [qubes-users] Kicking the sudoers dead horse

2017-03-11 Thread sm8ax1
7v5w7go9ub0o: > > > On 03/11/2017 12:10 PM, Alex wrote: >> On 03/11/2017 12:14 PM, Chris Laprise wrote: >>> On 03/11/2017 04:20 AM, Alex wrote: the only really read-write directories (their changes are actually persisted) are /home and /usr/local. >>> That is enough to be able to

Re: [qubes-users] Kicking the sudoers dead horse

2017-03-11 Thread sm8ax1
hib0...@gmail.com: > This part of the file system is not rewritten on every boot. Are you > constantly somehow verifying your VM every boot, every 5 minutes, every web > page load? Or are you restoring from a backup every boot or worse rebuilding > the entire VM from a template every time you

Re: [qubes-users] Kicking the sudoers dead horse

2017-03-14 Thread sm8ax1
sm8ax1: > Andrew David Wong: >> On 2017-03-13 22:09, Chris Laprise wrote: >>> On 03/12/2017 06:09 PM, 7v5w7go9ub0o wrote: >>>> On 03/12/2017 12:45 PM, Andrew David Wong wrote: >>>>> On 2017-03-11 19:41, Unman wrote: >>>>>> On Sa

Re: [qubes-users] Kicking the sudoers dead horse

2017-03-12 Thread sm8ax1
Unman: > On Sat, Mar 11, 2017 at 04:43:41PM +0000, sm8ax1 wrote: >> 7v5w7go9ub0o: >>> >>> >>> On 03/11/2017 12:10 PM, Alex wrote: >>>> On 03/11/2017 12:14 PM, Chris Laprise wrote: >>>>> On 03/11/2017 04:20 AM, Alex wrot

Re: [qubes-users] First time user: initial issues and thoughts

2017-03-06 Thread sm8ax1
Chris Laprise: > On 03/05/2017 08:11 AM, sm8ax1 wrote: >> >> Thanks, I read the custom install page prior to installing, but I was >> unaware of #2340. >> >> To be honest, when I decided I wanted BTRFS, I just sort of assumed that >> guest disk images were lo

Re: [qubes-users] Qubes i3 Tips & Tricks

2017-03-06 Thread sm8ax1
Daniel Moerner: > I've been using i3 in dom0 for about a month now, and I wanted to share a few > tips and tricks (partly so I can have them in a centralized place for > reference): > > 1. To lock the screen on suspend and resume, you need to add a systemd target > in /etc/systemd/system. This

Re: [qubes-users] always blank VM-untrusted. possible?

2017-03-05 Thread sm8ax1
evo: > Hi! > > is there any possibility to get everything deleted in home folder if i > restart the VM (in that case untrusted)? > > this would be more secure, so there will be no need to take care of > surfing and such things. > > greets > evo > DisposableVMs are meant for that. My XFCE

Re: [qubes-users] First time user: initial issues and thoughts

2017-03-05 Thread sm8ax1
Andrew David Wong: > On 2017-03-04 06:35, sm8ax1 wrote: >> Hi, > >> I just installed Qubes yesterday and wanted to share my thoughts and >> some issues I ran into. > >> Table of Contents >> 1. Use Case / Thanks >> 2. Minor issues with manual parti

Re: [qubes-users] Re: How to use a and which mailclient in QUBES (via TOR)?

2017-03-05 Thread sm8ax1
Unman: > On Sat, Mar 04, 2017 at 11:30:35PM -, pixr...@mail2tor.com wrote: > >> What needs to be done that IMAP goes over TOR? can this be done and if so >> how should I set it up in Qubes? >> > > Just put your mail qubes downstream from a TorVM, so that the traffic is > routed through Tor.